SRG-OS-000163-GPOS-00072 Controls

STIG IDVersionTitleProduct
AZLX-23-001245V1R2Amazon Linux 2023 must be configured so that all network connections associated with SSH traffic are terminated after 10 minutes of becoming unresponsive.Amazon Linux 2023
AZLX-23-001250V1R2Amazon Linux 2023 must be configured so that all network connections associated with SSH traffic terminate after becoming unresponsive.Amazon Linux 2023
AZLX-23-002396V1R2Amazon Linux 2023 must automatically exit interactive command shell user sessions after 15 minutes of inactivity.Amazon Linux 2023
AZLX-23-002510V1R2Amazon Linux 2023 must terminate idle user sessions.Amazon Linux 2023
ALMA-09-040500V1R5AlmaLinux OS 9 must terminate idle user sessions.AlmaLinux OS 9
APPL-13-000051V1R5The macOS system must be configured with the SSH daemon ClientAliveInterval option set to 900 or less.macOS 13 - Ventura
APPL-13-000052V1R5The macOS system must be configured with the SSH daemon ClientAliveCountMax option set to 1.macOS 13 - Ventura
APPL-13-000053V1R5The macOS system must be configured with the SSH daemon LoginGraceTime set to 30 or less.macOS 13 - Ventura
APPL-14-000051V2R4The macOS system must configure SSHD ClientAliveInterval to 900.macOS 14 - Sonoma
APPL-14-000052V2R4The macOS system must configure SSHD ClientAliveCountMax to 1.macOS 14 - Sonoma
APPL-14-000053V2R4The macOS system must set Login Grace Time to 30.macOS 14 - Sonoma
APPL-14-000110V2R4The macOS system must configure SSH ServerAliveInterval option set to 900.macOS 14 - Sonoma
APPL-14-000120V2R4The macOS system must configure SSHD Channel Timeout to 900.macOS 14 - Sonoma
APPL-14-000130V2R4The macOS system must configure SSHD unused connection timeout to 900.macOS 14 - Sonoma
APPL-14-000140V2R4The macOS system must set SSH Active Server Alive Maximum to 0.macOS 14 - Sonoma
APPL-15-000051V1R6The macOS system must configure SSHD ClientAliveInterval to 900.macOS 15 - Sequoia
APPL-15-000052V1R6The macOS system must configure SSHD ClientAliveCountMax to 1.macOS 15 - Sequoia
APPL-15-000053V1R6The macOS system must set login grace time to 30.macOS 15 - Sequoia
APPL-15-000110V1R6The macOS system must configure the SSH ServerAliveInterval to 900.macOS 15 - Sequoia
APPL-15-000120V1R6The macOS system must configure SSHD channel timeout to 900.macOS 15 - Sequoia
APPL-15-000130V1R6The macOS system must configure SSHD unused connection timeout to 900.macOS 15 - Sequoia
APPL-15-000140V1R6The macOS system must set SSH Active Server Alive Maximum to 0.macOS 15 - Sequoia
OL07-00-040160V3R5The Oracle Linux operating system must be configured so that all network connections associated with a communication session are terminated at the end of the session or after 15 minutes of inactivity from the user at a command prompt, except to fulfill documented and validated mission requirements.Oracle Linux 7
OL07-00-040320V3R5The Oracle Linux operating system must be configured so that all network connections associated with SSH traffic are terminated after 10 minutes of becoming unresponsive.Oracle Linux 7
OL07-00-040340V3R5The Oracle Linux operating system must be configured so that all network connections associated with SSH traffic terminate after becoming unresponsive.Oracle Linux 7
OL08-00-020035V2R7OL 8 must terminate idle user sessions.Oracle Linux 8
OL08-00-020040V2R7OL 8 must automatically exit interactive command shell user sessions after 10 minutes of inactivity.Oracle Linux 8
OL09-00-002346V1R4OL 9 must be configured so that all network connections associated with SSH traffic terminate after becoming unresponsive.Oracle Linux 9
OL09-00-002347V1R4OL 9 must be configured so that all network connections associated with SSH traffic are terminated after 10 minutes of becoming unresponsive.Oracle Linux 9
OL09-00-002411V1R4OL 9 must automatically exit interactive command shell user sessions after 15 minutes of inactivity.Oracle Linux 9
OL09-00-002376V1R4OL 9 must terminate idle user sessions.Oracle Linux 9
RHEL-07-040160V3R9The Red Hat Enterprise Linux operating system must be configured so that all network connections associated with a communication session are terminated at the end of the session or after 15 minutes of inactivity from the user at a command prompt, except to fulfill documented and validated mission requirements.Red Hat Enterprise Linux 7
RHEL-07-040320V3R9The Red Hat Enterprise Linux operating system must be configured so that all network connections associated with SSH traffic are terminated at the end of the session or after 10 minutes of inactivity, except to fulfill documented and validated mission requirements.Red Hat Enterprise Linux 7
RHEL-07-040340V3R9The Red Hat Enterprise Linux operating system must be configured so that all network connections associated with SSH traffic terminate after a period of inactivity.Red Hat Enterprise Linux 7
RHEL-08-010200V2R6RHEL 8 must be configured so that all network connections associated with SSH traffic terminate after becoming unresponsive.Red Hat Enterprise Linux 8
RHEL-08-010201V2R6RHEL 8 must be configured so that all network connections associated with SSH traffic are terminated after 10 minutes of becoming unresponsive.Red Hat Enterprise Linux 8
RHEL-08-020035V2R6RHEL 8.7 and higher must terminate idle user sessions.Red Hat Enterprise Linux 8
RHEL-08-020360V2R6RHEL 8 must automatically exit interactive command shell user sessions after 10 minutes of inactivity.Red Hat Enterprise Linux 8
RHEL-09-255095V2R7RHEL 9 must be configured so that all network connections associated with SSH traffic terminate after becoming unresponsive.Red Hat Enterprise Linux 9
RHEL-09-412035V2R7RHEL 9 must automatically exit interactive command shell user sessions after 10 minutes of inactivity.Red Hat Enterprise Linux 9
RHEL-09-412080V2R7RHEL 9 must terminate idle user sessions.Red Hat Enterprise Linux 9
SLES-12-030191V3R4The SUSE operating system for all network connections associated with SSH traffic must immediately terminate at the end of the session or after 10 minutes of inactivity.SUSE Linux Enterprise 12
SLES-15-010320V2R4The SUSE operating system for all network connections associated with SSH traffic must immediately terminate at the end of the session or after 10 minutes of inactivity.SUSE Linux Enterprise 15
UBTU-18-010416V2R15The Ubuntu operating system must automatically terminate all network connections associated with SSH traffic at the end of the session or after 10 minutes of inactivity.Ubuntu 18.04
UBTU-20-010037V2R3The Ubuntu operating system must immediately terminate all network connections associated with SSH traffic at the end of the session or after 10 minutes of inactivity.Ubuntu 20.04
UBTU-22-255035V2R7Ubuntu 22.04 LTS must be configured so that all network connections associated with SSH traffic are terminated after 10 minutes of becoming unresponsive.Ubuntu 22.04
UBTU-24-600000V1R1Ubuntu 24.04 LTS must immediately terminate all network connections associated with SSH traffic after a period of inactivity.Ubuntu 24.04
UBTU-24-600010V1R1Ubuntu 24.04 LTS must immediately terminate all network connections associated with SSH traffic at the end of the session or after 10 minutes of inactivity.Ubuntu 24.04
WN16-DC-000160V2R9The directory service must be configured to terminate LDAP-based network connections to the directory server after 5 minutes of inactivity.Microsoft Windows Server 2016
WN19-DC-000160V3R7Windows Server 2019 directory service must be configured to terminate LDAP-based network connections to the directory server after five minutes of inactivity.Microsoft Windows Server 2019
WN22-DC-000160V2R7Windows Server 2022 directory service must be configured to terminate LDAP-based network connections to the directory server after five minutes of inactivity.Microsoft Windows Server 2022
This website is not created by, run, approved, or endorsed by the U.S. Department of Defense. Use at your own risk. This website is created by open-source software.